Is Observability free?

Yes, Observability is free to use.

How do I install Observability?

Observability is a local plugin. Install it using npm package: @thotischner/observability-mcp and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

What credentials does Observability need?

Observability requires the following credentials or environment variables: MCP_TRANSPORT, PROMETHEUS_URL, LOKI_URL. You can find setup instructions on the server detail page.

What AI apps work with Observability?

Observability uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Observability MCP Server

by ThoTischner

Developer ToolsUse Caution4.2MCP RegistryLocal

Free

Server data from the Official MCP Registry

Unified observability gateway for AI agents — Prometheus, Loki & more, with anomaly detection.

About

Unified observability gateway for AI agents — Prometheus, Loki & more, with anomaly detection.

Security Report

4.2

Use Caution4.2High Risk

This is a well-architected MCP observability gateway with mature security patterns including RBAC, audit logging, CSRF protection, and token budgeting. However, several moderate-severity issues warrant attention: (1) SSRF protections are environment-gated and default-permissive, allowing local/private network access without explicit operator opt-in; (2) arbitrary connector installation from URLs without strict provenance validation in default mode; (3) broad shell-like subprocess patterns in the connector plugin loader; (4) sensitive auth state (session tokens, API keys) cached in memory without strict lifecycle controls. The codebase demonstrates strong intent around security but has operational configuration gaps that could enable exploitation if defaults are not overridden. Supply chain analysis found 5 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue.

4 files analyzed · 15 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

HTTP Network Access

Connects to external APIs or services over the internet.

env_vars

Check that this permission is expected for this type of plugin.

File System Read

Reads files on your machine. Normal for tools that analyze or process local data.

File System Write

Writes or modifies files on your machine. Check that this is expected for the tool.

process_spawn

Check that this permission is expected for this type of plugin.

Shell Command Execution

Runs commands on your machine. Be cautious — only use if you trust this plugin.

What You'll Need

Set these up before or after installing:

Set to 'stdio' when an MCP client spawns the package directly (the npx default starts the HTTP gateway + Web UI on :3000 instead).Optional

Environment variable: MCP_TRANSPORT

Prometheus base URL to connect as a metrics source (optional; sources are also configurable via the Web UI / sources.yaml).Optional

Environment variable: PROMETHEUS_URL

Loki base URL to connect as a logs source (optional).Optional

Environment variable: LOKI_URL

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-thotischner-observability-mcp": {
      "env": {
        "LOKI_URL": "your-loki-url-here",
        "MCP_TRANSPORT": "your-mcp-transport-here",
        "PROMETHEUS_URL": "your-prometheus-url-here"
      },
      "args": [
        "-y",
        "@thotischner/observability-mcp"
      ],
      "command": "npx"
    }
  }
}

Reviews

No reviews yet

Be the first to review this server!

More Developer Tools MCP Servers

Git

Free

by Modelcontextprotocol · Developer Tools

Read, search, and manipulate Git repositories programmatically

Fetch

Free

by Modelcontextprotocol · Developer Tools

Web content fetching and conversion for efficient LLM usage

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

Observability MCP Server

About

Security Report

Findings (15)Action required

Permissions Required

What You'll Need

How to Install

Reviews

No reviews yet

More Developer Tools MCP Servers

Git

Fetch

Toleno

mcp-creator-python

MarkItDown

FinAgent